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(TS) 
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Hardware Security^ 
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Secure Application. 
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App Server 
(AS) #n 



Optional 
HSM 
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Fig. 1: Application Framework 



Fig. 2: SAC Self-Publishing 



1: 
2: 



3: 



Application Server (AS) 



Assign new identifier SAC. ID to SAC 
Generate syrrimetric key SAC.key 



Make publicly available 

<AS.ID, SAC.ID, SymEnc{SAC.exe. SAC.key), 
Sign(<SAC.ID, SAC.exe>, AS.privKey)> 
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Fig. 3: Coupon Collection & Redemption 



Application Server (AS) 



7: 



Verify TS sii 
Generate SAC 
non-secret idei itifyi 
Record <certlC 



Coprocessor (Cp) 



Trust Server (TS) 



1: 



Generate one-time key pair 
(pubKey, privKey) 



SAC.ID, certID, pubKey 



6: 



Sign(<certlD, pubKey>, TS.privKey) 



ign^ture; 

individualization data "blob" & 

ing info for "blob", "blobTag", 
blob, blobTag> 



10: 



18: 
19; 



Verify TS sii 
Mark blob as 



Enc(<blob, blobTag, SAC.key>, pubKey), 
Slgn(Enc{<blob, blobTag, SAC.key>, pubKey), 
AS.privKey) 



11: 



2: pubKey 



3: Assign new certID 



Performed inside HSM & with atomicity: 
Compute Sign(<certlD, pubKey>, TS.privKey); 



5: Record <certlD, pubKey, Cp.lD> 



Sign(<certlD, pubKey>, TS.privKey) 



Verify AS signature; 
Decrypt message 



17: blobTag, Sign(<certlD, AS.ID, 
H(blob)>, TS.privKey) 



ignciture 
activated 



12: certID, AS.ID, SAC.ID, H(blob) 



..1_3:. 



Performed inside HSM & with atomicity; 
CojTipute Sjgn{<certiP, AS.!P,,H(bJob)>, 
TS.privKey); 



14; 


Verify that certlD has not been assigned 




before; 




15: 


Record <certlD, AS.ID, SAC.ID. H(blob)> 


16; Sjgn(<certlD, AS.ID. H(blob)>, 






TS.privKey) 
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Fig. 4: SAC-Series Initialization 



Application Server (AS) 



4: 
5: 
6: 



Trust Server (TS) 



Assign new SAC. number; 
Record SAC.number 



3: SAC.number 



Generate SAC-serles symmetric key AS.key; 
Generate SAC-series tracking secret AS. track; 
Record <SAC. number, AS.key, AS.track> 



SAC.number, 
Enc(<AS.track, AS.key, SAC.number>, TS.pubKey) 



! Note: TS. local is a 
I secret secured by 
; TS HSM 



10: 
11: 



fNote: SAC.number is part ^; 
; of SACJD. { 
1 SACJD=<SAC.number, ; 
! ^SAC.version> J 



Perfonned Inside HSM & with atomicity: 
Generate SAC-series symmetric key SAC. key; 
Compute SAC.assjgn = Enc(<TS.!ocal, 
SAC.number, AS.track, AS.key, SAC.key>, 
TS.pubKey) 



Verify that SAC.number has not been assigned 
before; 

Record <SAC.number, SAC.assign> 
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Fig. 5: SAC Publishing 



Application Server (AS) 



Trust Server (TS) 



1: 



Generate symmetric key msgKey 



2: 



Sent with authentication of origin: 

AS.ID, SAC.ID, Enc(<H(SAC.exe), msgKey>, TS.pubKey), 
SymEnc(SAC.exe, msgKey) 



If optional authorization step is 
performed, replace both 
occurrences of SAC.exe with 
SAC.src (source code of SAC) 



3: 
4: 



Let CT1 = Enc(<H(SAC.exe), msgKey>, TS.pubKey); 
Let CT2 = SymEnc(SAC.exe, msgKey); 



if*"! 



s 



12: 



13: 



14: 



Optional SAC-publishing 
authorization step; 
included or excluded per 
, business arrangement 



5: 



9: 



Performed inside HSM: 

Decrypt, and then verify hash & output SAC.src 



Review SAC.src for policy compliance; 
Generate SAC.exe from SAC.src; 
Generate symmetric key msgKey'; 
Let CT1 = Enc(<H(SAC.exe), msgKey'>, TS.pubKey); 
Let CT2 = SymEnc(SAC.exe, msgKey') 



10: 
11: 



Performed atomically inside HSM: 

Decrypt CT1 & CT2, and then verify hash; 

Using SAC.assign, compute: Sign(<AS.ID, H(SAC.key), 

SymEnc(H(<SAC.ID, SAC.exe>), AS.key), H(<SAC.ID, 

SAC.exe>)>, TS.privKey), SymEnc(SAC.exe, SAC.key) 



Sign(<AS.ID, H(SAC.key), SymEnc(H(<SAC.ID. SAC.exe>). 
AS.key), H{<SACrlD, SAC.exe>)>, TS.privKey), 
SymEnc(SAC.exe. SAC.key), SAC.ID, H(SAC.key) 



Verify message using knowledge of 
SAC.exe and AS.key 



Make publicly available: 

<AS.ID, SAC.ID, SymEnc(H(<SAC.ID, 

SAC.exe>, AS.key), Sign(<AS.ID. 

H(SAC.key), SymEnc(H(<SAC.ID, 

SAC.exe>), AS.key), H(<SAC.ID. 

SAC.exe>)>TS.privKey), 

SymEnc(SAC.exe, SAC.key)> 
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Fig. 6: SAC-Series Bulk Individualization 



Application Server (AS) 



Trust Server (TS) 



Generate and record a sequence of SAC 

individualization data pairs (blobTagJ, blob_i), 

(where i = 1, n); 

Let seqAS=<(blobTag_1, blob^l), .... 

(blobTag_n, blob_n)>; 

Generate symmetric key msgKey 



4: SAC.number, Enc(<AS. track, SAC.number, H{seqAS), 
msgKey>, TS.pubKey), SymEnc(seqAS, msgKey) 



8: 



Performed atomically inside HSM: 
Input SAC. assign: verify consistency with 
AS.track and SAC.number in the request; 
Extract (blobTagJ, biobj), where 1 = 1, n; 
For i = 1, n, compute 

CTbiobJ = Enc(<SAC.number, SAC.key, 
blobTagJ, blobJ>. TS.pubKey) 



Record <SAC. number, blobTagJ, CTblobJ> 
for i = 1,...,n 



Fig. 7: SAC Permissioning (into Coprocessor): 
Installation and Individualization 



Coprocessor (Cp) 



Trust Server (TS) 



1- -SAC.II> 



3: 



Performed atomically inside HSM: 
From storage, get encrypted record 
Enc(<SAC.number, SAC.key, blobTag, blob>, 
TS.pubKey) that has not been used before; 
Decrypt and verify that SAC.number matches 



Record <SAC.ID, blobTag, Cp.lD> 

(to mark blob as used, and for tracking Cp) 

Delete encrypted record from storage 



5: SAC.ID, SAC.key. blobTag, blob 



6: With SAC.key, decrypt SymEnc(SAC.exe, 
SAC.key), which is publicly available; 

^* Verify SAC.exe against publicly available 
signature (by TS); 

S: Install SAC; 

9: Store <blobTag, blob> if this is a fresh 
installation (i.e. not an upgrade) 
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